Mechanism to Secure Sensitive Data Exposure Risk in MVC

Ammar Rafiq, Pariwish Touseef, Moeez Ameer Ashraf

Abstract

The Model View Controller architecture has been used in many web applications. Now, with the arrival of extensive web applications, the Model View Controller is implemented on number of sites. However, its usage has devastating security threats. A lot of attacks have been taken this year and it is observed that there is security leakage of sensitive data. In this paper we describe how to add security to sensitive data in Model View Controller Architecture. Many of the researchers have proposed many of the cryptography hashing and encryption algorithms such as ESA encryption, MD5 hashing, SHA-1 and SHA-256. But most of them encountered some problems such as delay to maintain security. In this paper, the security goals were enhanced via a novel approach “MP1” with combination of better encryption and hashing algorithm, to maintain the security of the sensitive data. A gradation of security levels namely strong, high, and medium and low has been proposed with different algorithms to provide security for sensitive data. With the proposed approach lower level of deliberate attempts made by attackers at obtaining the sensitive data as both encryption and hashing will be done at same time. We will show that our approach leads to an effective technique that is robust against malicious forms of attacks.